Some useful features are:
- Support for all form encoding types: standard URL encoding, multipart encoding, and plain text encoding.
- Auto-detection of the optimal encoding type, with manual override.
- Ability to edit both the request and response in-place, to fine tune attacks.
- In-browser testing, by pasting a URL into your browser that will cause Burp Proxy to serve up the CSRF PoC in its response.